node-apple-receipt-verify
Advanced tools
© Siarhei Ladzeika < sergey.ladeiko@gmail.com >
A Node.js module for In-App-Purchase receipt validation for iOS.
The module can optionally turn on verbose debug log.
In order to enable the verbose logging, give the following to .config():
var appleReceiptVerify = require('node-apple-receipt-verify');
appleReceiptVerify.config({
verbose: true
});
Initializes module. Can be called more than once to reconfigure module.
options: supports following keys:
secret [string] - Apple shared secret (See it in iTunes Connect: Go to My Apps > (select your app) > In-App Purchases > View or generate a shared secret) [optional]verbose [boolean] - verbose logging switch, false by default. [optional]environment [array of strings] - defines environments used for receipt validation on Apple servers. Supported environments: 'sandbox', 'production'. The sequence is important. Defaults to ['production']. [optional]ignoreExpired - if true, then expired purchases are skipped. Defaults to true. [optional]NOTE: Shared password is required for iTunes subscription purchases.
Validates an in-app-purchase receipt.
options: supports keys:
receipt [string] - base64 encoded receipt. [required]device - iOS vendor identifier. Example 438498A7-4850-41DB-BCBE-4E1756378E39. If specified, then module will check if receipt belongs to vendor identifier. [optional]ignoreExpired - if true, then expired purchases are skipped. Overrides global ignoreExpired specified in .config(). [optional]callback: receives error or list of purchased products embedded in receipt
The purchased products list has structure:
[
{
bundleId: <string>,
transactionId: <string>,
productId: <string>,
purchaseDate: <number>,
quantity: <number>,
*expirationDate: <number>
},
...
]
Example:
var appleReceiptVerify = require('node-apple-receipt-verify');
appleReceiptVerify.config({
secret: "1234567890abcdef1234567890abcdef",
environment: ['sandbox']
});
appleReceiptVerify.validate({ receipt: appleReceipt, device: '438498A7-4850-41DB-BCBE-4E1756378E39' }, function (err, products) {
if (err) {
return console.error(err);
}
// ok!
});
FAQs
A Node.js module for Apple In-App-Purchase receipt validation for iOS
The npm package node-apple-receipt-verify receives a total of 3,131 weekly downloads. As such, node-apple-receipt-verify popularity was classified as popular.
We found that node-apple-receipt-verify demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.